With major data breaches in the news and high-stakes security regulations in effect - including GDPR and the NIS Directive - CISOs worldwide are scrambling to comply with IT standards and avoid hefty fines. Privileged Access Management (PAM) streamlines compliance and overlaps with the requirements of many...
Companies are moving to the cloud in greater numbers than ever, targeting flexibility and access for their increasingly distributed workforces. But cloud migration of critical resources, even a portion for hybrid environments, presents serious security challenges and risks on many levels. The cloud is an attractive...
The NIS Directive, effective since May 2018, aims to standardize the security practices of Essential Services entities and their digital service providers to better defend against cyber attacks. Privileged Access Management (PAM) is a critical aspect of cyber defense, and responds to many of the NIS Directive's most...
Implementation of software-defined wide area network (SD-WAN) solutions can be a complex process, with multiple factors affecting the overall performance of the device.
NSS research indicates that SD-WANs are typically deployed with the vendor's pre-defined or recommended (i.e., "out-of-the-box") settings. The tested...
What makes Industrial Control Systems (ICS) so vulnerable to cyber attack? How does this impact the wider enterprise? With IoT-connected equipment and remote management on the rise, security has never been so important. Privileged Access Management (PAM) secures and controls access to critical Industrial...
Two heavyweight cybersecurity regulations, ISO 27001 and the more recent GDPR, are major concerns for CISOs and IT teams worldwide. Conveniently for CISOs and IT teams, however, the two standards have much in common. Here we offer a cross-mapping of the security requirements of each regulation, and how PAM can help...
Despite increased use of two-factor authentication, single sign-on, and biometrics, passwords are still the most common form of authentication. However, when a significant percentage of breaches are caused by weak, stolen, or reused passwords, it's clear passwords pose significant risks that can't be...
Despite increased use of two-factor authentication and biometrics, passwords are still the most common form of authentication. However, when most breaches are caused by weak, stolen, or reused passwords, it's clear passwords pose significant risks that can't be ignored.
From potential security breaches to increased...
We no longer live in a Web only world. Consumers are increasingly interacting across multiple touchpoints, particularly digital channels. Today, over half of all transactions originate from a mobile device or app, and as a result, fraud in the mobile channel has increased over 600 percent in three years. With so many...
Recent analysis by F5 Labs shows that 68% of malware installed through phishing is hiding in encryption. Security inspection tools such as next-generation firewalls, intrusion prevention systems, data loss prevention systems, and others are increasingly blind to SSL/TLS traffic. In some cases, they introduce latency...
Corporate espionage. The internet of threats. Today's risks are nothing short of scary. And with new challenges popping up nearly every day, infosec professionals are under even greater pressure to identify their own vulnerabilities, before hackers do it for them.
So what can you do to keep your organization...
Implemented in May 2018, the General Data Protection Regulation, or GDPR, marked a colossal shift in the treatment and handling of personal data. And while the GDPR is an EU policy, its effects aren't limited to European borders.
On top of the implications the policy has on global companies with ties to the...
We can trust technology. After all, we made it. So what could possibly go wrong? If you're renowned cybersecurity expert Bruce Schneier, the answer is "a lot."
In this transcript from his RSA Conference 2018 session, Schneier addresses some of technology's biggest double-edged swords, such as device connectivity...
Account takeover is a rapidly growing arena for
cybercriminals. How can organizations strengthen
both authentication and authorization?
Download this whitepaper to learn more about:
Why account takeover fraud is a growing and strengthening problem;
How organizations can strengthen authentication and...
GDPR. NIST CSF. NY DFS. These acronym laws and standards can be maddening to navigate clearly for legal and compliance teams. Particularly when the threat landscape is ever evolving, and the threat actors - from outside and within - are unrelenting. This is why we have designed these sessions as an opportunity for...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing cuinfosecurity.com, you agree to our use of cookies.
